Information Security Officer
Bengaluru, India
Information Security Officer
Hello!!
Who are we?
Locus.sh is a leading-edge technology company dedicated to solving the most challenging problems in logistics and supply chain. Our ambition? To revolutionize the supply chain realm through cutting-edge technology, enabling smarter, automated decision-making. From dispatch management and carrier orchestration to route optimization and real-time insights, our solutions are designed to enhance efficiency, consistency, and transparency in operations.
Our Journey and Impact:
Since our inception in 2015, with the backing of esteemed investors like GIC Singapore, Qualcomm Ventures, Tiger Global, and Falcon Edge ($80M raised so far), we've embarked on a global mission to redefine logistics. Our technologies have empowered giants like Unilever, Nestle, and The Tata Group, facilitating over 1 billion deliveries across 30+ countries. The result? A staggering $288 million in cost savings, a 12 million tonne reduction in CO2 emissions, and an unwavering 99.5% SLA adherence.
Our Global Footprint:
Based in Bangalore, India, our reach extends across the Americas, Southeast Asia, the Middle East, and beyond. As a vibrant team of 170+ visionaries, we're on an exhilarating growth trajectory.
Traits We Value:
Global: You possess a global mindset, understanding and appreciating diverse cultures and market nuances. You're adept at thinking beyond borders and appreciate the vast opportunities that a worldwide perspective brings.
Unrelenting: You display unmatched perseverance and commitment in everything you do. Challenges invigorate you, and you are determined to overcome obstacles with innovative solutions.
Intelligent: You consistently demonstrate sharp analytical thinking and astute problem-solving capabilities. You're quick to grasp complex concepts and can effectively communicate intricate ideas.
Dynamic: Adaptable and agile, you thrive in fast-paced environments. You're always prepared to pivot your strategies and approaches based on evolving business needs and market shifts.
Exact: Precision and attention to detail define your work ethic. You value accuracy and are committed to delivering results that reflect the highest standards of excellence and reliability
Information Security Officer
We're looking for a 3-4 yrs experienced Information Security Officer.
Responsibilities:
Define, implement, and maintain the Information Security Management System (ISMS) and Privacy Information Management System (PIMS).
Plan and execute periodic risk assessments. Work directly with the business units to facilitate risk assessment and risk management processes.
Define, Review and Maintain the organizational information security policies, processes, procedures and control framework to ensure it is adequate to address the emerging risks due to changing environment, technology and legal requirements.
Align customer and internal information security objectives to the ISMS and PIMS.
Monitor and fulfill client contractual (MSA) information security and privacy obligations.
Monitor and fulfill legal obligations related to protection of personal information across different jurisdictions like GDPR, CCPA.
Prepare metrics based periodic reports and dashboards with support from the stakeholder functions for management review.
Liaise with security vendors, suppliers, service providers and external resources for new security tools for improving security.
Lead the Information Security audits / assessments / remediation and present key risks to the management.
Perform the Third party Risk Assessment of Critical Vendors.
Conduct Information Security and Privacy awareness and training programs for the employees as part of their induction and regular awareness.
Oversee information security and privacy incident management process for incident reporting, containment, resolution and root cause analysis.
Plan and coordinate BCP and DR tests.
Setup guidelines for secure coding practices.
Recommend security and privacy controls based on people, process and technology approach and industry best practices.
Identifying solutions or writing automation scripts for solving regular tasks or optimizing processes.
SOC Monitoring Activities such as. Firewall, Vulnerability, Inspector, Guarduty etc.
Log Review, Incident Handling & Compliance adherence
Requirements:
Good understanding of information security compliance requirements like ISO27001, SOC2, CSA STAR and Privacy requirements like BS10012 & ISO27701.
Good understanding of legal obligations towards protection of personal information across different jurisdictions like GDPR, CCPA, etc.
Experience in creating and auditing security and privacy best practices and implementation of security and privacy principles across organization, to meet business goals along with customer and regulatory requirements.
Experience implementing security and privacy controls for cloud platforms like AWS, Azure.
Experienced in solving Audit and Regulatory Issues.
Experience in auditing MDM, SSO solutions, AWS (Cloud Infra), Firewall, WAF, DLP etc
Good at solving information security compliance challenges by recommending solutions and best practices.
Life at Locus comes with added benefits as well:
A comprehensive Health Insurance policy that covers you and also your loved ones
No leave restrictions(you manage your own leaves)
At Locus, every member is an owner and a leader, no matter which team or function they represent. We believe that you are excited about the potential to make an impact in Last mile deliveries through technology and the prospect of creating a legacy that outlasts you! The biggest joy of working at Locus, for all of us, comes from the opportunity to create value each day and experience autonomy in all we do.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Audits Automation AWS Azure CCPA Cloud Compliance Firewalls GDPR ISMS ISO 27001 Monitoring Privacy Risk assessment Risk management SOC SOC 2 SSO
Perks/benefits: Career development Health care
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.